Impact Cubed LLP (“Impact Cubed”) are committed to ensuring the security and protection of the personal information that we process, and to provide a compliant and consistent approach to data protection. We have always had a robust and effective data protection program in place which complies with existing law and abides by the data protection principles. However, we recognise our obligations in updating and expanding this program to meet the demands of the GDPR.
Information you give us. This is information about you that you provide to us by filling in forms or by corresponding with us by phone, electronic mail or otherwise. It may include basic personal information such as your name, address, e-mail address, phone number, title, and company. Impact Cubed may request more sensitive information from you such as financial information, social security and other government identification numbers where it is appropriate or necessary for conducting business.
Information we collect about you. Impact Cubed may also supplement the personal information you provide with information we receive from third parties, including our business partners, contractors, analytics and other service providers. In order to be compliant with statutory regulation we need to carry out Know Your Client checks. We use third parties to perform the checks and keep confirmation on our permanent file to be provided as evidence that we have carried out the necessary procedures, and have considered the risk assessment, as proof of our compliance with legislation.
We process the personal data for certain legitimate reasons, among other things, to help us improve the overall accuracy of the information and its completeness, to help us better tailor our interactions with you, and to help us identity and prevent fraud.
Impact Cubed uses, stores and processes the personal information we collect to provide you with: information, products and services which you request from us; details of similar products or services which you have already requested; for the prevention of financial crime; and to monitor and improve our existing services.
When you contact Impact Cubed, we may keep a record of your communication to help solve any issues that you might be facing. Depending on the country in which you live, your information may be retained for a reasonable time for use in future contact with you, or for future improvements to Impact Cubed services.
Impact Cubed may also use or disclose your personal information when Impact Cubed believes, in good faith, that such use or disclosure is reasonably necessary to (i) comply with law, (ii) enforce or apply the terms of any of our user agreements, or (iii) protect the rights, property or safety of Impact Cubed, Impact Cubed’s users, or others. Impact Cubed reserves the right to transfer and disclose your information, on an anonymised basis if Impact Cubed becomes involved in a business divestiture, change of control, sale, merger, or acquisition of all or a part of its business.
Impact Cubed may share personal information we collect about you with our affiliates, business partners, service providers, subsidiaries, vendors, consultants and other service providers to perform work on our behalf. The information may be shared with third parties to offer or provide related services according agreements signed with Impact Cubed.
Impact Cubed may share your information in response to a request for information, if upon review, we determine that disclosure is in accordance with, or required by, any applicable law, regulation or legal process.
We may share your information if we determine that your actions are inconsistent with our user agreements or policies, or if we must protect the rights, property and safety of Impact Cubed or others.
Impact Cubed may share your personal information in connection with or during negotiations of any merger, sale of company assets, financing or acquisition of all or a portion of our business by another company.
Whenever we share your data with anyone other than a we will only do so after satisfying ourselves that there is a legitimate reason for doing so and except in the case of governmental or regulatory organisations over which we have no control, that the persons with whom we have shared your data have appropriate controls over your data.
In the situations when Impact Cubed stores or transfers personal information outside the EU, we have robust procedures and safeguarding measures in place to secure, encrypt and maintain the integrity of the data. Our procedures include a continual review of the countries with sufficient adequacy decisions, as well as provisions for binding corporate rules; standard data protection clauses or approved codes of conduct for those countries without. We carry out strict due diligence checks with all recipients of personal data to assess and verify that they have appropriate safeguards in place to protect the information, ensure enforceable data subject rights and have effective legal remedies for data subjects where applicable.
The security of your personal information is important to us. We use reasonable physical, electronic and procedural safeguards to protect the personal information we collect. Impact Cubed uses reasonable measures to safeguard personally identifiable information from loss, theft, misuse, alteration and unauthorized access or destruction. In addition, we maintain appropriate physical, electronic, and procedural safeguards to protect your personal data, including:
Impact Cubed also employs industry-standard measures and processes for detecting and responding to inappropriate attempts to breach our systems.
There is, however, no method of transmission over the Internet, or method of electronic storage that can be 100% secure. Therefore, Impact Cubed cannot guarantee the absolute security of your information. The Internet by its nature is a public forum, and Impact Cubed encourages you to use caution when disclosing information online. Often, you are in the best situation to protect yourself online. You are responsible for protecting your username and password from third party access, and for selecting passwords that are secure.
Impact Cubed regularly reviews our compliance with our Privacy Notice. If we receive formal written complaints, we will follow up with the person making the complaint. We work with the appropriate regulatory authorities to resolve any complaints that cannot be resolved directly.
Customers have the right to be informed about the collection and use of their personal data. This is achieved by means this Privacy Notice.
You have the right to access and review the personal data stored by us to confirm its accuracy, and if necessary you may request that personal data is updated if it is inaccurate. You may also request that certain personal data be deleted from our files.
Impact Cubed will make reasonable efforts to comply with such requests within 30 days period and free of charge, unless such requests are prohibited by law, or there is a legitimate business purpose to retain personal data. We reserve the right to verify your identity before any request to update or delete your personal data is processed by us. Please direct any questions about your personal data to our data protection officer using the contact details set out in this notice by sending subject access request form.
You have the right to require us to rectify any errors in the data we hold about you.
This right is not an absolute right and if you request the right to erasure and we are not able to fully comply with your request we will inform you of the reasons why we are not able to fully comply.
You have the right to ask us to collect all the data you hold about them and transfer it to a new providor in a machine-readable form. We do not think this will be applicable for the types of data that we hold.
You have the right to ask us not to process your data/object to processing:
If you exercise this right, we will stop processing the personal data unless:
You have the right to object to the processing of your personal data in certain circumstances. You have the absolute right to stop your data being used for direct marketing.
This is not applicable as we do not engage in these activities.
If you wish to raise a complaint on how we have handled your personal data, you can contact our Data Protection Officer who will investigate the matter. If you are not satisfied with our response or believe we are processing your personal data not in accordance with the law you can complain to the Information Commissioner’s Office (ICO). Our Data Protection Officer’s contact details are set out below.
Impact Cubed reserves the right to update or amend this privacy notice at any time, including where Impact Cubed intends to further process your personal information for a purpose other than that for which the personal information was collected or where we intend to process new types of personal information. We will issue you with a new privacy notice when we make significant updates or amendments. We may also notify you about the processing of your personal information in other ways.
If you have any questions regarding Impact Cubed’s privacy practices, the use of your personal data, or about this Privacy Notice, please contact us at:
Impact Cubed LLP
10 Laurie Gray Avenue, Chatham, England, ME5 9DF